I am deeply sorry for asking an off topic question,
but this is the only group I am a member of at this time and need someone to
send me to the right group if possible.
I need some advice on apache directives or webpage
tags to stop cache servers like AOL users from overcaching our website
Same Error, Certificate Verification Error (10): Certificate has Expired...
> On Mon, Sep 18, 2000, Wil Boucher wrote:
>
> > Is it possible to enable SSLVerifyClient to accept expired certificates?
> >
> > I want to check that the user does in fact have access to a certificate,
be
> > it expired
On Tue, Sep 19, 2000 at 09:16:26PM +0200, [EMAIL PROTECTED] wrote:
> Did you ever figure out the answer to this? We are having the same problem
> here without
> sucess in reading those FAQs.
>
It is in the FAQ and in the archive. For additional info read openssl FAQ
also: http://www.openssl.org/s
On Tue, Sep 19, 2000 at 10:05:38AM -0700, Laqtib Slam wrote:
>
> I am running apache.1.3.9 with the support of DSO.
> How can add the mod_ssl to my system whout reinstalling apache again ?
You can't! Take this as a good time to upgrade to apache 1.3.12.
> Please any installation documentation w
Hi,
How to find out that my secure web
server is running properly.
Thank you
Mark
The solution I found was to install a third party /dev/random tool for
Solaris. Details about the particular third party library are available
here:
http://www.cosy.sbg.ac.at/~andi/
I have been using it in production for about 2 months with success on
Solaris 2.7 on SPARC.
Duane Gran
spinweb
Did you ever figure out the answer to this? We are having the same problem
here without
sucess in reading those FAQs.
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List
Hi,
I am running apache.1.3.9 with the support of DSO.
How can add the mod_ssl to my system whout reinstalling apache again ?
Please any installation documentation will also help!
thanks in advance
-Slam
__
Apache Interface to
On Tue, 19 Sep 2000 [EMAIL PROTECTED] wrote:
>Work arounds are:
>
> 1. Different IP addresses - Only sure way to reach everyone but your ISP
> may restrict your IP address allocation (solution - move ISP :)
> 2. Different ports - But many firewalls block access to non-standard port
I have a strange problem with SGC key in openssl-0.9.5a
mod_ssl-2.6.4-1.3.12 apache_1.3.12.
Some of MSIE 5 (these with 56-bit cryptography) complain that cannot
connect to server. In ssl engine log there's a request with 56 bits and
that's all - no info in ssl request log.
Other browsers (MSIE 5
Thanks for all your reply's. I'm now "in the know". Server setup for
IP Aliasing, more IP's ordered, nice :)
Kirk Benson wrote:
>
> My humble suggestion is to add the following text to the email message sent
> when a new member subscribes to the list:
>
> "name-based virtual hosts cannot be
[EMAIL PROTECTED] wrote:
>
> Is there any milage in having mod_ssl abort a start up if you try and configure
> it with name based virtual hosting ?
The present behaviour is that it prints a warning message; "Attempt to
use Name-Based VirtualHosting with SSL" (or words to that effect). It
will st
Sorry !
That's what I meant to say.
mod_ssl would only fail to start if it detected that you were trying to
configure NBH with SSL. Regular HTTP should not be stopped.
It's just an idea - this NBH issue generates SO much noise on this list
;-)
Simon.
[EMAIL PROTECTED] wrote:
>
> Is there any milage in having mod_ssl abort a start up if you try and configure
> it with name based virtual hosting ?
>
> I don't even know if mod_ssl is able to determine this detail of
> configuration but since it's definitely not what you want to to d
My humble suggestion is to add the following text to the email message sent
when a new member subscribes to the list:
"name-based virtual hosts cannot be used with SSL. Do not post this
question to the list as you will receive multiple RTFM replies. Please read
the FAQ on this topic."
My own s
Is there any milage in having mod_ssl abort a start up if you try and configure
it with name based virtual hosting ?
I don't even know if mod_ssl is able to determine this detail of
configuration but since it's definitely not what you want to to do,
failing to start and printin
On Tue, Sep 19, 2000, Nick Davies wrote:
> > There are protocol upgrades under consideration but until they are agreed, and
> > until most browsers implement them, the answer is still "it's impossible".
>
> But what do i have to do. I only have one phyiscal server. And i need
> to have ssl ser
On Mon, Sep 18, 2000, Wil Boucher wrote:
> Is it possible to enable SSLVerifyClient to accept expired certificates?
>
> I want to check that the user does in fact have access to a certificate, be
> it expired or not, before giving them access to certain pages.
>
> Wether I use 'optional' or 're
Work arounds are:
1. Different IP addresses - Only sure way to reach everyone but your ISP
may restrict your IP address allocation (solution - move ISP :)
2. Different ports - But many firewalls block access to non-standard ports
i.e. anything not 443. This may not be a p
Fundamentally yes, your book is wrong !
Although perhaps it is a matter of interpretation - you can separate your
HTTP and HTTPS servers as described and run them on one machine but you
can still only have one SSL server on port 443 for any given IP address.
You can achie
[EMAIL PROTECTED] wrote:
>
> There are protocol upgrades under consideration but until they are agreed, and
> until most browsers implement them, the answer is still "it's impossible".
But what do i have to do. I only have one phyiscal server. And i need
to have ssl servers running with differ
There are protocol upgrades under consideration but until they are agreed, and
until most browsers implement them, the answer is still "it's impossible".
Simon.
(Embedded image moved to file: pic30419.pcx) (Embedded image moved
to file: pic16724.pcx)
Please respond to
Hi Ralph
Wouldn't in be good to have a new mailing list called
[EMAIL PROTECTED]
People could just pust there and got the link to the FAQ returned.
The rest of us could just go on with relevant posts (such as mine...).
Bye
Tim
On Tue, 19 Sep 2000, Nick Davies wrote:
> Date: Tue, 19 Sep 2000 1
[EMAIL PROTECTED] wrote:
>
> No-one can help you - it isn't possible !
>
> See http://www.modssl.org/docs/2.6/ssl_faq.html#ToC46
>
> Rgds,
>
> Simon Wilcox.
>
> (Embedded image moved to file: pic17115.pcx) (Embedded image moved
> to file: pic24003.pcx)
>
> Plea
Owen Boyle wrote:
>
> Nick Davies wrote:
> >
> > can anyone help me. I have a mod_ssl/apache server running and i'm
> > trying to setup name based virtualhosts on it, but i can't figure out
> > how. I can setup name based virtualhost on the non ssl server.
> >
>
> Congratulations!
>
> You are
Nick Davies wrote:
>
> can anyone help me. I have a mod_ssl/apache server running and i'm
> trying to setup name based virtualhosts on it, but i can't figure out
> how. I can setup name based virtualhost on the non ssl server.
>
Congratulations!
You are the one-millionth mod_ssl user to att
No-one can help you - it isn't possible !
See http://www.modssl.org/docs/2.6/ssl_faq.html#ToC46
Rgds,
Simon Wilcox.
(Embedded image moved to file: pic17115.pcx) (Embedded image moved
to file: pic24003.pcx)
Please respond to [EMAIL PROTECTED]
Guys,
Thanks for all your tips. To address some suggestions/questions:
Carlos Ramirez: Test certificate created OK; started Apache with startssl
command
Mads Toftum: OS = Solaris 7, OpenSSL = 0.9.5a and I tried 0.9.6 beta
No core is dumped to be able to trace process
How I configured:
openss
can anyone help me. I have a mod_ssl/apache server running and i'm
trying to setup name based virtualhosts on it, but i can't figure out
how. I can setup name based virtualhost on the non ssl server.
Thanks.
Nick.
--
Nick Davies
Technical Director
Magnitude Ltd
www.magnitude.co.uk
[EMAIL PRO
29 matches
Mail list logo
